Shell Upload Challenge - ST03

Hack The Box Challenge
1

image

Hi Everyone.
Let’s make fun with this easy Shell Upload Challenge :wink:

Challenge: http://104-129-171-125.static.as40244.net

Note:

  • The challenge is under the root path
  • You can root, deface or you can do whatever you want to do with the server :sunglasses:

Scoreboard

  1. @error :star:
  2. @Shouvo

Thanks.

2 Likes
2

Attack started :wink:

image

1 Like
3

ha ha :stuck_out_tongue:

1 Like
4

How do I submit solution?
I’ve solved the challenge.

1 Like
5

Great job bro @error:heart:
I planned it for a specific bypass but you have done it in another way. Nice technique :wink:

image
image1104×691 46.3 KB

2 Likes
6

That’s specifically not my shell.
I just renamed others shell to try. Maybe some guys uploaded it.
:joy:
Whatever, waiting to see what you tried to keep in there.

2 Likes
7

Check inbox :rofl::rofl::rofl:

8

this is my shell :stuck_out_tongue: but i fail to execute this in php mode

2 Likes
9

my shell :joy::joy::joy:

1 Like
10

The suspense revealed :joy:

  • @error uploaded his own shell and executed it, then
  • he renamed the pre-upload shell which is uploaded by @Shouvo
  • both of the shell named as similar and I thought both of them are uploaded by @error.
  • and I took the screen-shot one of them and unfortunately that was @Shouvo’s shell… :rofl:

Please correct me if I am wrong.

2 Likes
11

btw congratulations @Shouvo
You really did well :sunglasses:
Can you please fix the index so that other people can try and learn.

1 Like
12

epic history… :rofl:

13

Congratulations both of you bro @error @Shouvo
Please share how you did that…I have tried many several times. :neutral_face:

14

yaaaap something like that :stuck_out_tongue:

2 Likes
15

i remove this uploader code and replace my code ,so i can’t fix this. Because this code not exist anymore… Sorry… But I hope You fix this :stuck_out_tongue:

2 Likes
16

Thanks dear :wink:

2 Likes
17

That is correct brother.
<3

3 Likes